Homeland 
Security 

Daily Open Source Infrastructure Report 

27 July 2015 

Top Stories 

• Fiat Chrysler Automobiles U.S. issued a voluntary recall and software update July 24 for 
various 1.4 million model year 2013-2015 vehicles with Uconnect systems to increase 
their security against remote manipulation. - Autoblog (See item 4 ) 

• The U.S. Office of Personnel Management announced July 23 that access to the Web-based 
e-QIP system is being incrementally restored following security upgrades performed in 
response to detected vulnerabilities. - Next gov (See item 19 ) 

• About 87,000 Verizon phone lines in Santa Monica, California were without service for 
almost 9 hours July 24 after water damaged a call routing center July 23. - Los Angeles 
Daily News (See item 

• The Louisiana State Police reported July 24 that an Alabama man indiscriminately shot and 
killed 2 people and injured 9 others before shooting himself while attending a movie in 
Lafayette July 23. - CNN (See item 29 ) 
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Energy Sector 



1 . July 23, Associated Press - (North Dakota) Oil, saltwater spill reported at well site 
near Parshall. Houston-based EOG Resources reported a tank overflow July 22 which 
spilled 20 barrels of oil and 246 barrels of saltwater. The substances have been 
contained and an inspector was sent to the location July 23. 

Source: http://bismarcktribune.com/bakken/oil-saltwater-spill-reported-at-well-site- 
near-parshall/article 327eb5ea-bl6e-5 149-96da-9d76f9bf9bc3.html 

2. July 23, Hawaii News Now - (Hawaii) Islandwide power outage hits Oahu for 
second day. Hawaiian Electric Company and the AES Corporation are investigating 
the cause of a power outage at an AES plant in Campbell Industrial Park after 57,000 
customers lost electricity July 23, following a July 22 power outage at the plant. 

Source: http://www.hawaiinewsnow.com/storv/29620216/heco-reports-multiple-power- 
outages-around-oahu-for-second-day 

Chemical Industry Sector 

Nothing to report 

Nuclear Reactors, Materials, and Waste Sector 

3. July 23, Associated Press - (Missouri) Missouri nuclear plant shut down after ‘non- 
emergency’ leak. The Ameren Corp., nuclear power plant in St. Eouis, Missouri was 
shut down July 23 after a “minor steam” leak occurred in the reaction control system. 
Officials reported the leak posed no threat to the public and an investigation is ongoing 
to determine the cause. 

Source: http://www.ksdk.eom/storv/news/local/2015/07/23/missouri-nuclear-plant- 
shut-down-after-non-emergencv-leak/30576123/ 

Critical Manufacturing Sector 

4. July 24, Autoblog - (National) FCA issuing software update for 1.4M vehicles to 
prevent hacking. Eiat Chrysler Automobiles U.S. issued a voluntary recall and 
software update for 1.4 million model year 2013-2015 Chrysler 200 and 300, Dodge 
Charger, Challenger, Viper, Ram, Durango, and Jeep Cherokee and Crand Cherokee 
vehicles with 8.4-inch touchscreen Uconnect systems to protect vehicles from remote 
manipulation, following reports that a security expert remotely hacked a vehicle via a 
cellular connection. 

Source: http://www.autoblog.eom/2015/07/24/fca-software-update-prevent-hacking- 
recall/ 

5. July 24, Computerworld - (International) Firewalls can’t protect today’s connected 
cars. Security and automotive experts reported on the risks associated with Internet- 
enabled vehicles, including a lack of operational security and multiple access wireless 
access points to vehicles’ controller area networks (CAN). The researchers 
recommended alternate approaches to vehicle security such as encrypted CAN 
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messaging or detection-software. 

Source: http://www.networkworld.com/article/2951888/securitv/firewalls-cant-protect- 
todavs-connected-cars.html#tk.rss all 

6. July 23, U.S. Consumer Product Safety Commission - (International) Husqvarna 
recalls lawn and garden tillers due to risk of bodily injury, laceration. Husqvarna 
Consumer Outdoor Products N.A., Inc., issued a recall July 23 for about 24,000 Ariens, 
Husqvarna, Jonsered, and Poulan Pro brand lawn and garden tillers due to an issue in 
which the tiller’s transmission rod and clip can contact the control cable during 
shifting, causing the tiller to unintentionally move. The product was sold at hardware 
stores, home centers, and independent power equipment dealers from October 2014 - 
May 2015. 

Source: http://www.cpsc.gov/en/Recalls/2015/Husqvarna-Recalls- 
Tillers/?utm source=feedly&utm medium=rss&utm campaign=Recalls-rRSS 

7. July 22, U.S. Consumer Product Safety Commission - (National) GreenWorks 
blower/vacs recalled by Sunrise Global Marketing due to fire and burn hazards. 
Sunrise Global Marketing LLC issued a recall for about 14,000 GreenWorks 
blower/vac units due to an issue in which the motor can catch fire, posing a fire and 
bum hazard. The product was sold at Menards, Magic Mart, and Mowtown stores 
nationwide and online at various retailers from February 2012 - June 2015. 

Source: http://www.cpsc.gov/en/Recalls/2015/GreenWorks-Blower-Vacs-Recalled-by- 
Sunrise-Global- 

Marketing/?utm source=feedly&utm medium=rss&utm campaign=Recalls-rRSS 

Defense Industrial Base Sector 

Nothing to report 

Financial Services Sector 

8. July 23, KCBS 2 Los Angeles - (California) Retired LAPD detective arrested in 
series of ‘Snowbird Bandit’ bank robberies. Orange County authorities arrested a 
former Los Angeles Police Department detective July 23 on suspicion of being the 
‘Snowbird Bandit,” who robbed at least 5 Orange County banks since March. 

Source: http://losangeles.cbslocal.eom/2015/07/23/retired-lapd-detective-coined- 
snowbird-bandit-arrested-in-series-of-oc-bank-robberies/ 

9. July 23, Bay City News Service - (California) Four east coast men arrested in San 
Carlos for credit card fraud. San Mateo County officials arrested 4 suspects July 22 
after deputies discovered hundreds of fraudulent gift and credit cards, equipment used 
to manufacture cards, and various merchandise valued at $125,000 in their vehicle. . 
Source: http://patch.com/califomia/sancarlos/four-east-coast-men-arrested-san-carlos- 
credit-card-fraud 

10. July 22, Reuters - (National) Discover to pay $18.5 min over student loan 
allegations. U.S. regulators reported July 22 that Discover Financial Services agreed to 
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pay $18.5 million in penalties and consumer refunds to resolve allegations that 
Discover Bank overstated minimum amounts due on billing statements, took unfair 
actions on debt collection, and failed to provide basic student loan servicing functions. 
Source: http://www.reuters.eom/article/2015/07/22/usa-banks-studentloans- 
idUSLlN1021F620150722 

Transportation Systems Sector 

11. July 24, New York New sday - (New York) Power outage causes flight cancellations, 
delays at LaGuardia Airport, officials say. A Port Authority of New York and New 
Jersey official reported that 45 flights into and out of LaGuardia Airport were cancelled 
and 5 more were delayed July 24 after a contractor accidentally cut 2 feeder cables 
serving the terminal, causing an outage. Crews installed temporary generators to 
resume service and are working to complete permanent repairs. 

Source: http://www.newsdav.com/news/new-vork/laguardia-airport-delavs-due-to- 
power-problem-officials-say- 1 . 10673161 

12. July 23, Associated Press - (Colorado) Flight makes emergency landing after 
passengers feel ill. A United Airlines flight from Denver to Los Angeles was diverted 
to Grand Junction, Colorado July 22 after a number of passengers reported feeling ill. 
The plane was evacuated while crews investigated the plane and tested the air, and one 
passenger was taken to a hospital for evaluation. 

Source: http://6abc.com/travel/flight-makes-emergencv-landing-after-passengers-feel- 
ill/875150/ 

Food and Agriculture Sector 

13. July 24, WACH 57 Columbia - (South Carolina) Chemical leak at plant in Columhia. 
The Columbia Fire Department reported July 24 that an ammonia leak at the Tyson 
Foods Plant in South Carolina prompted HAZMAT crews to remain on site for about 
two hours to repair the leak. No injuries were reported and an investigation is ongoing 
to determine the cause of the incident. 

Source: http://www.wach.com/news/story. aspx?id=1234602#.VbI0svlVhBc 

14. July 24, Associated Press - (National) GMO labels can’t be mandated. House says. 
The U.S. House of Representatives passed a bill July 23 exempting companies from 
labeling foods that may contain genetically modified ingredients. The law is scheduled 
to be in effect July 2016. 

Source: http://www.usnews.eom/news/politics/articles/2015/07/23/house-passes-bill-to- 
prevent- mandatory- gmo-labeling 

15. July 24, U.S. Department of Agriculture - (National) Brown Packing recalls veal 
products due to possible E. coli contamination. Brown Packing Company of South 
Holland, Illinois issued a recall July 23 for an undetermined amount of raw, boneless 
beef veal trimmings due to possible E. coli contamination. The product was produced 
from February 2014 - July 2015 and distributed to retail locations nationwide. 

Source: http://www.fsis.usda.gov/wps/portal/fsis/topics/recalls-and-public-health- 
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alerts/recall-case-archive/archive/20 15/recall- 104-2015-release 



16. July 23, U.S. Food and Drug Administration - (National) Life & More, L.L.C. issues 
nationwide voluntary recall of Akttive High Performance Fat Burner Gold 
capsules due to undeclared drug ingredients. The U.S. Food and Drug 
Administration reported July 23 that Life & More, L.L.C is voluntarily recalling 783 
bottles of Akttive High Performance Fat Burner Gold capsules due to three undeclared 
drugs including Sibutramine, Desmethylsibutramine, and Phenolphthalein. The product 
was sold online at www.akttive.com and shipped to customers nationwide. 

Source: http : //w w w.fda. go v/Safetv/Recalls/ucm45 581 6 .htm 

Water and Wastewater Systems Sector 

17. July 24, FME News Service - (Texas) Elevated E.coli levels found in Nolan Creek. 
Officials reported July 23 that 2 water sampling tests showed elevated levels of E.coli 
in Nolan Creek in Belton, due to recent rainfalls. People are advised to swim and 
recreate in the creek at their own risk, and warning signs will be posted along the 
popular swimming locations. 

Source: http://kdhnews.com/news/elevated-e-coli-levels-found-in-nolan- 
creek/article 34f73536-31be-l Ie5-b8c3-0797de3ae67a.html 

18. July 23, WDBJ 7 Roanoke/Lynchburg - (Virginia) Water service restored in Hurt as 
repairs continue at Altavista plant. Crews are working to restore service after a series 
of pipes failed a water plant in Altavista July 22, causing the neighboring town that 
buys water to lose service. Service in Altavista was not affected due to a backup water 
supply. 

Source: http://www.wdbj7.com/news/local/water-service-restored-in-hurt-as-repairs- 
continue-at-altavista-plant/3432 1 1 44 

Healthcare and Public Health Sector 

Nothing to report 

Government Facilities Sector 

19. July 23, Nextgov - (National) OPM says background check system now back online 
after security tweaks. The U.S. Office of Personnel Management announced July 23 
access to the Web-based e-QIP system is being incrementally restored after security 
upgrades, including enhanced password protections and secured transmission of data 
within the system, were performed in response to detected vulnerabilities. 

Source: http://www.nextgov.eom/cvbersecuritv/2015/07/opm-savs-background-check- 
system-back-online/l 18503/ 

20. July 23, FierceGovernmentIT - (National) Census Bureau confirms ‘unauthorized 
access’ to system; Anonymous members claim responsibility. The online activist 
group Anonymous claimed responsibility July 22 for a cyber- attack on the U.S. Census 
Bureau, which leaked non-confidential information including email addresses, phone 
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numbers, and job titles of the organization’s 4,200 employees. The organization’s 
internal systems were not affected, and the compromised servers have been locked 
down. 

Source: http://www.fiercegovemmentit.com/storv/census-bureau-confirms- 
unauthorized-access-svstem-anonvmous-claims-responsi/2015-07-23 

21. July 23, USA Today - (National) Pentagon: poor testing led to Army shipping live 
anthrax. A report released July 23 by the Pentagon cited inadequate testing and killing 
of anthrax specimens, specifically ineffective irradiation and viability testing 
procedures the Dugway Proving Ground in Utah, as a main cause behind the mistaken 
shipment of live spores to 183 labs over a 10-year period. 

Source: http://www.usatodav.eom/storv/news/nation/2015/07/23/armv-anthrax- 
shipments-pentagon-army/30 154545/ 

22. July 23, Enterprise Ledger - (Alabama) Courthouse closed due to A/C issues. The 
Coffee County Courthouse in Enterprise was closed July 23 - July 24 after both of its 
air conditioning units collapsed, raising internal temperatures to dangerous levels. 
Services will be offered at the Coffee County Courthouse in Elba until the problem is 
resolved. 

Source: http://www.dothaneagle.com/enterprise ledger/news/courthouse-closed-due- 
to-a-c-issues/article dbad0e44-313e-l Ie5-9a29-abf3353dd836.html 

Emergency Services Sector 

23. July 24, WMC 5 Memphis - (Tennessee) Ambulance stolen, taken for joyride 
around Memphis, DeSoto County. A Tennessee man was arrested July 24 after 
allegedly stealing a Memphis Mental Health Institute ambulance, prompting 4 police 
agencies to pursue the man. No injuries were reported. 

Source: http://www.wmcactionnews5.com/storv/29623225/ambulance-stolen-taken- 
for-jovride-around-memphis-desoto-county 

24. July 23, Brick Patch - (New Jersey) Brick man impersonated cop, stole $5K from 
nightclub patron, police say. Brick Township officials reported July 23 that a man 
was charged of theft and impersonating a police officer, among other charges, after he 
allegedly pulled over a driver while disguised as an officer, and stole $5,000 from the 
vehicle. 

Source: http://patch.com/new-iersey/brick/brick-man-impersonated-cop-stole-5k- 
nightclub-patron-police-say-0 

25. July 23, WEWS 5 Cleveland - (Ohio) Ammunition, ballistics vests, other gear stolen 
from police supervisor’s unmarked car; teen arrested. A Cleveland teenager was 
arrested July 22 after allegedly stealing a police commander’s equipment, including 
two bulletproof vests, a riot helmet, and ammunition, among other items from an 
unmarked police car. 

Source: http://www.newsnet5.com/news/local-news/cleveland-metro/ammunition- 
ballistics-vests-other-police-gear-stolen-from-supervisors-unmarked-police-car 
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Information Technology Sector 



26. July 24, Securityweek - (International) Red Hat patches “libuser” library 
vulnerabilities. Red Hat patched two vulnerabilities in its “libuser” library, including a 
race condition flaw that could lead to a denial-of-service (DoS) condition and a bug in 
the chfn function of the userhelper utility that an attacker could leverage to create a 
DoS condition and achieve privilege escalation on the system. 

Source: http://www.securitvweek.com/red-hat-patches- 
%E2%80%9Clibuser%E2%80%9D-library- vulnerabilities 

27. July 24, SC Magazine - (International) Sophos moves to patch Web Security 
Appliance flaws. A security researcher from Info- Assure Etd discovered two 
vulnerabilities in Sophos Security’s Web Appliance prior to version 4.0.4 that could 
allow unauthenticated users to read files from the device and inject arbitrary JavaScript 
via its management interface. 

Source: http://www.scmagazineuk.com/sophos-moves-to-patch-web-securitv- 
appliance-flaws/article/428301/ 

Eor additional stories, see items 4, 5, and 2^ 

Internet Alert Dashboard 



To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or 
visit their Web site: httD://www.us-cert.gov 

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and 
Analysis Center) Web site: http://www.it-isac.org 



Communications Sector 

28. July 24, Los Angeles Daily News - (California) Verizon phone service restored in 
Santa Monica. About 87,000 Verizon phone lines in Santa Monica were without 
service for nearly 9 hours July 24 after water damaged a call routing center July 23, 
leaving customers unable to make or receive calls from outside the affected area. Calls 
to 9-1-1 centers were not affected. 

Source: http://www.dailvnews.eom/general-news/20150723/verizon-phone-service- 
down-in-santa-monica 



Commercial Facilities Sector 

29. July 24, CATV - (Eouisiana) Man described as drifter kills 2, himself in Lafayette, 
Louisiana movie theater. The Louisiana State Police reported July 24 that an Alabama 
man indiscriminately shot and killed 2 people and injured 9 others before shooting 
himself while attending a movie in Lafayette July 23. The theater was evacuated and 
police are investigating the case. 

Source: http://www.cnn.eom/2015/07/24/us/louisiana-theater-shooting/ 

30. July 24, WVIT 30 New Britain - (Connecticut) Men stole almost $250,000 worth of 
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wine from distributor’s collection: police. A Connecticut police official reported July 
24 that two men were charged and arrested July 17 for first-degree larceny and 
conspiracy to commit larceny after stealing $248,000 worth of wine from Murphy 
Distributors. The investigation is ongoing. 

Source: http://www.nbcconnecticut.eom/news/local/Men-Stole-Almost-250000-Worth- 
of-Wine-from-Distributors-Collection-Police-3 18417841 .html 



31. July 24, Tulsa World - (Oklahoma) Bomb threat at downtown Tulsa Hyatt Regency 
Hotel deemed unfounded; guests allowed back inside. Tulsa’s Hyatt Regency Hotel 
was evacuated for more than 2 hours July 23 after a hotel operator received a bomb 
threat and notified police authorities. Bomb squads were deployed and found no traces 
of a bomb device. 

Source: http://www.tulsaworld.com/news/downtown/bomb-threat-forces-evacuation- 
of-downtown-tulsa-hyatt-regencv-hotel/article 404d8a33-6efc-5422-abc5- 
2ced09d3c 1 b7 .html 

32. July 23, WUSA 9 Washington - (West Virginia) 5 businesses destroyed in Harpers 
Ferry fire. Five Harpers Ferry’s businesses were destroyed July 23 after a 3-alarm fire 
prompted the response of 5 county fire crews. No injuries were reported and 
firefighters remained on site for over 2 hours extinguishing the flames. 

Source: http://www.wusa9.eom/storv/news/local/2015/07/23/harpers-ferrv-wv-old- 
town-fire/30555339/ 



Dams Sector 



Nothing to report 
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Department of Homeland Security (DHS) 

DHS Daily Open Source Infrastructure Report Contact Information 

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday 
through Friday] summary of open-source published information concerning significant critical 
infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for 10 days on 
the Department of Homeland Security Web site: http ://w w w. dhs . gov/lPDail vReport 

Contact Information 

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS 

Daily Report Team at (703) 942-8590 

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow 

instructions to Get e-mail updates when this information changes . 

Removal from Distribution List: Send mail to support @ govdeliverv.com . 



Contact DHS 

To report physical infrastructure incidents or to request information, please contact the National Infrastructure 
Coordinating Center at nicc@hq.dhs.gov or (202) 282-9201. 

To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or visit 
their Web page at www.us-cert. gov . 

Department of Homeland Security Disclaimer 

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform 
personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright 
restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source 
material. 
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